Am 28.03.2013 10:31, schrieb Joachim Metz: > Apparently I need to spell it out. > > This was largely meant as an example that usercustomize.py can > override most of the python interpreter.
Yes, and this is one of the reasons why PyInstaller denies running as roof (or fakeroot). Since PyInstaller is changing sys.path to run directly from the download/development directory, an intruder could simply drop in some module there. Please adopt your build process to not require PyInstaller running as root/fakeroot. As you already showed, there is a simple work-around, there is not need to weaken PyInstaller. (NB: I suggest changing the UID in your build-script instead of hacking arounf with a usercustomize.py. This is more transparent to builder.) -- Schönen Gruß Hartmut Goebel Dipl.-Informatiker (univ), CISSP, CSSLP Goebel Consult http://www.goebel-consult.de Monatliche Kolumne: http://www.cissp-gefluester.de/2011-11-in-troja-nichts-neues Blog: http://www.goebel-consult.de/blog/20060920 Goebel Consult ist Mitglied bei http://www.7-it.de/
smime.p7s
Description: S/MIME Kryptografische Unterschrift
